Security News > 2023 > April > Update now: Google emits emergency fix for zero-day Chrome vulnerability
In brief Google on Friday released an emergency update for Chrome to address a zero-day security flaw.
This fix would be the first zero-day in Chrome squashed by Google this year.
Tech industry actors, including the likes of Google and Intel, announced a project last week to create a legal environment that's more favorable for good-faith security researchers, plus another to help foot the bills for researchers caught in a lawsuit.
Along with founding members Intel, Bugcrowd and others, Google said it's throwing its weight behind the Hacking Policy Council, citing the need for ensuring that "We get laws right."
Google described the Council as "a group of like-minded organizations and leaders who will engage in focused advocacy to ensure new policies and regulations support best practices for vulnerability management and disclosure, and do not undermine our user's security."
Google said it's also providing seed funding for the Security Research Legal Defense Fund, which will "Fund legal representation for individuals performing good-faith research in cases that would advance cybersecurity for the public interest," the search giant said.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/04/17/chrome_emergency_patch/
Related news
- Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day (source)
- Lazarus Group Exploits Google Chrome Vulnerability to Control Infected Devices (source)
- New Chrome Zero-Day (source)
- Google Chrome gets a mind of its own for some security fixes (source)
- Windows vulnerability abused braille “spaces” in zero-day attacks (source)
- Google Chrome Switches to ML-KEM for Post-Quantum Cryptography Defense (source)
- Chrome Users Can Now Sync Passkeys Across Devices with New Google PIN Feature (source)
- New Google Chrome feature will translate complex pages in real time (source)
- New Octo Android malware version impersonates NordVPN, Google Chrome (source)
- Google: 70% of exploited flaws disclosed in 2023 were zero-days (source)